From owner-freebsd-questions@FreeBSD.ORG Sat Oct 21 06:05:54 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 13D7716A403 for ; Sat, 21 Oct 2006 06:05:54 +0000 (UTC) (envelope-from martin@saturn.pcs.ms) Received: from saturn.pcs.ms (101.114.79.83.cust.bluewin.ch [83.79.114.101]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0212343D55 for ; Sat, 21 Oct 2006 06:05:52 +0000 (GMT) (envelope-from martin@saturn.pcs.ms) Received: from saturn.pcs.ms (localhost [127.0.0.1]) by saturn.pcs.ms (8.13.1/8.13.1) with ESMTP id k9L6GwGT031224; Sat, 21 Oct 2006 08:16:59 +0200 (CEST) (envelope-from martin@saturn.pcs.ms) Received: (from martin@localhost) by saturn.pcs.ms (8.13.1/8.13.1/Submit) id k9L6Ge4F031214; Sat, 21 Oct 2006 08:16:40 +0200 (CEST) (envelope-from martin) Date: Sat, 21 Oct 2006 08:16:40 +0200 From: Martin Schweizer To: Mike Spenard , freebsd-questions@freebsd.org Message-ID: <20061021061640.GZ73560@saturn.pcs.ms> Mail-Followup-To: Mike Spenard , freebsd-questions@freebsd.org, Martin Schweizer References: <45392181.3000306@signull.com> <20061020035902.GY73560@saturn.pcs.ms> <4538C29B.3050600@signull.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="3lEnBJ3eT4fJ0mBo" Content-Disposition: inline In-Reply-To: <4538C29B.3050600@signull.com> User-Agent: Mutt/1.4.2.1i Organization: PC-Service M. Schweizer GmbH, CH-8608 Bubikon, Switzerland X-PGP-Key: http://www.pc-service.ch/pgp/public_key.asc X-Fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239 Cc: Martin Schweizer Subject: Re: cyrus-sasl2 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Martin Schweizer List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 21 Oct 2006 06:05:54 -0000 --3lEnBJ3eT4fJ0mBo Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hello Mike Attached you'll find the mail from Anish an me last year. Hope this helps. = Do=20 you use only sasldb2 or saslauthd? If not drop me a line. Am Fri, Oct 20, 2006 at 08:35:39AM -0400 Mike Spenard schrieb: > Just looking to get sendmail auth working with pwcheck >=20 > Martin Schweizer wrote: > >Hello Mike > > > >What do you need concretly? I use sendmail/cyrus imap (also replication = on=20 > >a second derver)/sieve (also websieve)/apache (incl. ssl). > > > >Am Fri, Oct 20, 2006 at 03:20:33PM -0400 Mike Spenard schrieb: > > =20 > >>Hey Martin, > >>I saw this post, could I get those hints too? > >> > >>Thanks! > >>Mike Spenard > >> > >>Hello Gerard > >> > >>I ran in the same trouble. With some changes you can use the article in= =20 > >>the handbook. Should I send you my hints? > >> > >>Am Tue, Nov 08, 2005 at 08:36:32AM -0500 Gerard Seibert schrieb: > >> =20 > >>>/ I found this notation on regarding cyrus-sasl on the FreeBSD site > >>> =20 > >>/>/=20 > >>. > >>/[snip] > >> =20 > >>>/ Does this apply to cyrus-sasl2 as well? I tried 'make config' but th= at > >>> =20 > >>/>/ produced nothing. I do not see any option for the 'pwcheck' option = in > >>/>/ the Makefile. What, if any compile options should I include on the > >>/>/ command line? I am running FreeBSD 5.4 at present. > >> =20 > > My goal is to use sendmail and cyrus impad 2.3. The problem is if I > change the mailer in sendmail.mc nothing appears. I also checked > sendmail.cf. There are no other mailers the the default ones. I'm > very confused about the problem. Any ideas are very welcome. I'm using cyrus-imapd22 in production on a few servers with the base=3D20 sendmail. I'm assuming you have cyrus-imapd23 setup correctly. # set the sendmail password check method touch /usr/local/lib/sasl2/Sendmail.conf # add "pwcheck_method: saslauthd" to use sasl database # or "pwcheck_method: passwd" for normal login password checking # add to /etc/make.conf SENDMAIL_CFLAGS+=3D3D -I/usr/local/include -DSASL=3D3D2 \ -D_FFR_SMTP_SSL -DSOCKETMAP SENDMAIL_LDFLAGS+=3D3D-L/usr/local/lib SENDMAIL_LDADD+=3D3D-lsasl2 # set box specific .mc file in /etc/make.conf so upgrades # don't wipe out our existing settings SENDMAIL_MC=3D3D/etc/mail/host.mydomain.com.mc # build shared sendmail libs cd /usr/src/lib/libsm && \ make cleandir && make depend && make obj && make cd /usr/src/lib/libsmutil && \ make cleandir && make depend && make obj && make # now rebuild sendmail in the base cd /usr/src/usr.sbin/sendmail && \ make cleandir && make depend && make obj && make && make install # in for box specific .mc add dnl set SASL options define(`confAUTH_OPTIONS', `A p y')dnl dnl define(`confDEF_AUTH_INFO', /etc/mail/auth-info')dnl DAEMON_OPTIONS(`Port=3D3Dsmtp, Name=3D3DMSA, M=3D3DE')dnl DAEMON_OPTIONS(`Port=3D3Dsmtps, Name=3D3DTLSMSA, M=3D3DEs')dnl define(`confLOG_LEVEL', `13')dnl TRUST_AUTH_MECH(`LOGIN PLAIN')dnl define(`confAUTH_MECHANISMS',`LOGIN PLAIN')dnl define(`confLOCAL_MAILER',`cyrusv2') # stop and restart sendmail cd /etc/mail make make install make stop make start # check if it worked! telnet localhost 25 ehlo localhost If you're trying to host mail for multiple domains you'll need to hack=3D20 the local ruleset to not strip the @domain.tld from the address=3D20 before it's passed to cyrus. The -DSOCKETMAP in the SENDMAIL_CFLAGS=3D20 is needed, but I use it with a special rule to verify the From:=3D20 address that comes from a locally hosted domain is actually valid by=3D20 looking it up via cyrus. =3D2D-=3D20 Anish Mistry --nextPart1950586.76sVkRoCBK Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQBD3Q4sxqA5ziudZT0RAr60AJ9peG8y/2Sw3CsOeWejr06v/GcmyQCaA6Nf QDiynagLlk2ngBGbhcUdUXQ=3D =3D2AAh -----END PGP SIGNATURE----- --nextPart1950586.76sVkRoCBK-- --=20 Regards Martin Schweizer PC-Service M. Schweizer GmbH; Bannholzstrasse 6; CH-8608 Bubikon Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch; public key : http://www.pc-service.ch/pgp/public_key.asc;=20 fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239; --3lEnBJ3eT4fJ0mBo Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFFObtIwa4WkdMP0jkRAsAQAKClqHQXR5LrRG81RKTT/TNvriubbACfciIf 9XleWy4VOOWOxfPEnVmb7ys= =cyq5 -----END PGP SIGNATURE----- --3lEnBJ3eT4fJ0mBo--